Technologies for secure inter-virtual network function communication

摘要

Technologies for secure inter-virtual network function communication include a computing device to determine a cryptographic key for secure communication over at least one of an inter-virtual network function (VNF) network, an inter-virtual network function component (VNFC) network, or a VNF-VNFC network based on a security policy of the computing device; and. The computing device securely communicates over at least one of the inter-VNF, inter-VNFC, or VNF-VNFC network based on the determined cryptographic key.

主权项

1. A computing device for secure inter-virtual network function communication, the computing device comprising:
a processor; a memory; and a network function virtualization infrastructure module to: (i) determine whether security has been established on the computing device for secure communication over at least one of an inter-virtual network function (VNF) communication network, an inter-virtual network function component (VNFC) communication network, or a VNF-VNFC communication network; (ii) determine a cryptographic key for secure communication over the at least one of the inter-virtual network function (VNF) communication network, the inter-virtual network function component (VNFC) communication network, or the VNF-VNFC communication network based on a security policy of the computing device; (iii) receive a communication from at least one of a first VNF of the computing device or a first VNFC of the computing device to be communicated to at least one of a second VNF or a second VNFC; (iv) determine, based on the security policy, that the communication from the at least one of the first VNF or the first VNFC to the at least one of the second VNF or the second VNFC should be encrypted; (v) encrypt the communication with the cryptographic key in response to the determination that the communication should be encrypted; (vi) transmit the encrypted communication to the at least one of the second VNF or the second VNFC over the at least one of the inter-VNF, inter-VNFC, or VNF-VNFC network in response to a determination that the security has been established; and (vii) prevent communication over the at least one of the inter-VNF, inter-VNFC, or VNF-VNFC communication network based on the security policy in response to a determination that the security has not been established.